Jobs · Information Technology · Ohio

Mid-level Vulnerability Researcher

Battelle · Columbus, OH · 1 wk ago
On-siteInformation Technology$110k–$140k/yrFull-time

About the role

Battelle is seeking an aspiring Mid-level Vulnerability Researcher to join our team in Columbus, OH or Chantilly, VA. This role involves working with disassemblers and debuggers to quickly understand how embedded devices operate, and building tools that push the boundaries of current techniques.

Responsibilities

  • Research and debug embedded devices
  • Create and refine tools for vulnerability research
  • Collaborate with a close-knit team of researchers
  • Work on a variety of projects ranging from genomics to robotics
  • Participate in internal research and development projects

Requirements

  • Bachelor’s degree in related field with 5 years of experience; or Master’s degree in related field with 2 years of experience; or PhD in related field; or equivalent combination of education and experience
  • Strong understanding in reading assembly language and using debugging tools
  • Experience with a disassembler for vulnerability research (Ghidra, IDA Pro, BinaryNinja)
  • Experience with one or more assembly languages (x86, x64, ARM, MIPS, PowerPC, etc.)
  • Experience with one or more debuggers (WinDbg, OllyDbg, gdb)
  • Experience with vulnerability research on one or more operating systems: Android, iOS, Windows, Linux, MacOS, VxWorks, QNX, RTOSs, or other custom operating systems
  • Knowledge of advanced exploitation techniques (ret2libc, use-after-free, type confusion)
  • Knowledge of exploit protection techniques (DEP, ASLR/NX)
  • Ability to code in C and/or Python
  • Ability to work individually and in small fast-paced team environments

Qualifications

  • Passion and drive to continuously improve your skill set
  • US Citizenship with the ability and willingness to obtain a DoD Secret or higher clearance

Preferred Qualifications

  • Understanding of network protocols
  • Experience with AI/ML
  • Experience with microcontrollers
  • Experience emulating embedded platforms for live debugging
  • Experience using fuzzing tools such as AFL or Peach
  • Experience with symbolic analysis
  • Active DoD Secret security clearance

Benefits

  • Tuition assistance
  • Paid training
  • Software and Intellectual Property development royalty sharing
  • Mentorship and learning culture
  • Internally funded and guided research projects with large amounts of individual autonomy
  • Comprehensive benefits package including:
    • Flexible work schedule
    • Hybrid work arrangement
    • Paid time off
    • Wellness incentives
    • Supplemental benefits
    • Financial stability through a 401(k) retirement savings plan

Pay

Annual salary compensation range: $110,000 - $140,000 (Ohio) and $126,700 - $180,500 (Virginia) per year, in addition to our comprehensive benefits package.

Schedule

Learn (tuition assistance, paid training) and teach (get published, speak at a conference) Software and Intellectual Property development royalty sharing Mentoring and learning culture Internally funded and guided research projects with large amounts of individual autonomy

Similar jobs

Vulnerability Researcher

The Applied Research Laboratory at Penn State UniversityReston, VA· 1 mo ago
Information Technology$127k–$277k/yrapply on psu.wd1.myworkdayjobs.com